Scenarios
This section describes how to create a DB instance on the management console and then connect to that instance through an ECS over a private network.
If you are using GaussDB(for MySQL) for the first time, see Constraints.
Process
Figure 1 illustrates the process of connecting to a DB instance over a private network.
- Step 1: Create a DB instance. Confirm the specifications, storage, network, and database account configurations of the DB instance based on service requirements.
- Step 2: Configure security group rules.
- If the ECS and DB instance are in the same security group, they can communicate with each other by default. No security group rule needs to be configured. Go to Step 3: Connect to a DB Instance Over a Private Network.
- If the ECS and DB instance are in different security groups, you need to configure security group rules for the ECS and DB instance, respectively.
- DB instance: Configure an inbound rule for the security group to which the DB instance is associated.
- ECS: The default security group rule allows all outgoing data packets. In this scenario, you do not need to configure a security group rule for the ECS. If not all outbound traffic is allowed in the security group, you need to configure an outbound rule for the ECS.
- Step 3: Connect to a DB instance over a private network. You can connect to the DB instance through a common connection, or an SSL connection for enhanced security. SSL connections are encrypted.